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DETAILED ACTION 

1 . This office action is in response to Applicant's amendment filed on June 4, 2008. 
Claims 1-20 are pending. 

Claim Rejections - 35 USC § 101 

2. In view of the amendment filed June 4, 2008, the Examiner withdraws the 
rejection of claims 8-1 1 under 35 U.S.C. 1 01 . 

Response to Arguments 

3. Applicant's arguments filed June 4, 2008 have been fully considered but they are 
not persuasive. In response to the applicants arguments the following comments are 
made: 

The applicant argued that because of the complexity of the system of Alegre, 
there is not a one-to-one relationship between the steps and components of Alegre and 
those of the claimed invention. Applicant alleges that many of the passages cited in the 
office action in support of the rejections are very long and cover numerous steps 
involving numerous components and the Office Action frequently lacks sufficient 
precision for the applicant to adequately understand the rejection. As shown below 
although all the relevant columns and figures are cited by the Examiner, specific figures 
and citations are cited in the previous office action to point out how the combination of 
Alegree and Kobita discloses the claimed limitations. 

The Applicant argued that there is no teaching that session information is 
generated (at control node or any other location) or is sent anywhere, including to the 
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client, the system node and the data node, which is as yet still unidentified in Alegre. 
Alegre discloses a key server 234 (i.e. control node) creates a unique and unpredictable 
session key, and stores the session key. Authentication server then transmits the 
session key and user access profile to web host 210. Web host 210 stores the session 
key at client browser 110 using a cookie, (i.e. session key sent to the client) Web host 
210 also sends trusted network 138 (i.e. system node) access presentation information 
to client browser 110. The trusted network access presentation information is created 
based on the user access profile, and thus includes only selections for accessing 
resources that the user has access to. Alegre further teaches the user selects an 
access request from the trusted network access presentation information to access 
trusted network 138 ... key server 234 compares the session key with currently valid 
session keys to determine if the session key is still valid, and returns the results of the 
session key validity... if the session key is valid, access server performs the request (i.e. 
establishing secure authenticated connection between the client and the system node). 

Applicant argued that neither of the passages, nor the combination of the two, 
teaches "a request is received from the client access the system node and a request is 
received from the system node to access the client." The specification of the instant 
application on paragraph 41 recites that the cleitns sends a request to the control node 
idenityfying a registered system node from the list. The control node verifies that the 
client satisfies the access permissions for the requested system node (e.g. based on 
information maintained in client database), and that the system node is registered and 
available." Alegre teaches creating access presentation information based on user 
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access profile, and thus includes only selections for accessing resources (i.e. registered 
system node) that the user has access to. Access server extracts the session key from 
the request packet, and transfers the session key to key server to determine whether if 
is valid, (i.e. the system node to access the client) Key server compares the session key 
with currently valid session keys to determine if the session key is still valid session 
keys and returns the result of the session key validity check to access server. If the 
session key is still valid, access server performs the request, (figure 2, col. 45, lines 8- 
67) In addition, Kobita teaches the user of a sending system initiates the secure mail 
application and establishes a connection with an enterprise secure server. The user of 
the receiving system initiates the secure mail application and establishes a connection 
with a secure mail server, (page 8, pp. 89-90) 

In response to applicant's argument that the references fail to show certain 
features of applicant's invention, it is noted that the features upon which applicant relies 
(i.e., "both the client and the system node must be authenticated) are not recited in the 
rejected claim(s). Although the claims are interpreted in light of the specification, 
limitations from the specification are not read into the claims. See In re Van Geuns, 988 
F.2d 1181, 26 USPQ2d 1057 (Fed. Cir. 1993). 

In response to applicant's arguments against the references individually, one 
cannot show nonobviousness by attacking references individually where the rejections 
are based on combinations of references. See In re Keller, 642 F.2d 413, 208 
USPQ 871 (CCPA 1981); In re Merck & Co., 800 F.2d 1091, 231 USPQ 375 (Fed. Cir. 
1986). 
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Claim Rejections - 35 USC § 103 

1 . The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 1-9, 11-13 and 16-20 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Alegree et al. (hereinafter Alegree) US Patent Number 6,1 99,1 1 3 in 
view of Kobita et al. (hereinafter Kobita) US 2006/0005237. 
As per claims 1 , 8 and 12: 

Alegree teaches a method comprising: generating session information at the 
control node (figure 2, 210) in response to a request from a client (figure 2, 110) to 
access a system node (figure 2, 138) and sending the session information to the client, 
the system node, and a data node if the client and system node satisfy at least one 
condition for accessing each other; (col. 4, lines 17-23; when the user wants to access 
trusted network 138, the user sends a request from client browser 110, ... web host 
stores the session key at client browser and also sends trusted network ) receiving at 
the data node a request from the client to access the system node; (col. 4, lines 31-39 
and lines 43-48; access server verifies that the network request packet came from web 
host, extracts the session key from the network request packet) and establishing a first 
secure authenticated connection between the client and the system node via the data 
node based at least in part of the session information, (col. 4, lines 48-67; ...if the 
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session key is still valid, access server performing the request... access server performs 
the request) 

Alegree does not explicitly disclose a request from the system node to access 
the client. Kobata in analogous art, however, teaches a request from the system node to 
access the client, (page 8, pp. 89; to exchange digital content with the receiving system, 
a user of the sending system initiates secure mail application and establishes a 
connection with the enterprise secure server). Therefore it would have been obvious to 
one ordinary skill in the art at the time the invention was made to modify the method 
disclosed by Algree with Kobita in order enable a secure exchange of an electronic 
document between the sending system and the receiving system, (page 7, pp. 85; 
Kobita) 

As per claim 2: 

The combination of Algree and Kobita teaches all the subject matter as 
discussed above. In addition, Algree further discloses receiving at the control node a 
request from the client for the session information, (col. 7, lines 2-43) 
As per claims 3, 9 and 13: 

The combination of Algree and Kobita teaches all the subject matter as 
discussed above. In addition, Algree further discloses prior to receiving the request from 
the client to access the system node, registering the system node with the control node, 
(col. 4, lines 32-47) 
As per claims 4 and 19-20: 
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The combination of Algree and Kobita teaches all the subject matter as 
discussed above. In addition, Algree further discloses prior to receiving the request from 
the client to access the system node, providing a list of registered system nodes to the 
client, wherein the system node is selected at the client from the list of registered 
system nodes, (col. 4, lines 55-67; col. 7, lines 2-65) 
As per claims 5 and 17-18: 

The combination of Algree and Kobita teaches all the subject matter as 
discussed above. In addition, Algree further discloses notifying the system node when a 
message is received from the client at the data node. (col. 4, lines 55-67; col. 8, lines 
28-44) 

As per claims 6-7 and 16: 

The combination of Algree and Kobita teaches all the subject matter as 
discussed above. In addition, Algree further discloses establishing a second secure 
authenticated connection between the system node and the data node. (col. 4, lines 55- 
67) 

As per claim 1 1 : 

The combination of Algree and Kobita teaches all the subject matter as 
discussed above. In addition, Algree further discloses wherein a computer process at 
the data node futher comprises: notifying the system node when a message is received 
from the client at the data node; (col. 4, lines 32-67) establishing a second secure 
authenticated connection between the system node and the data node; (col. 4, lines 32- 
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67) and sending the message from the data node over the second secure authenticated 
connection between the system node and the data node. (col. 4, lines 32-67) 
5. Claims 10, 14-15 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Alegree et al. (hereinafter Alegree) US Patent Number 6,1 99,1 1 3 in view of Kobita 
et al. (hereinafter Kobita) US 2006/0005237 and further view of Araujo US 7,275,1 13. 
As per claims 1 0 and 1 4-1 5: 

The combination of Algree and Kobita teaches all the subject matter as 
discussed above. Both references do not explicitly disclose wherein the computer 
process at the control node further comprises updating a client database at the control 
node with a dynamic network address for the system node on a recurring basis. Araujo 
in analogous art, however, discloses wherein the computer process at the control node 
further comprises updating a client database at the control node with a dynamic network 
address for the system node on a recurring basis, (col. 8, lines 41- col. 9, line 31) 
Therefore it would have been obvious to one ordinary skill in the art at the time the 
invention was made to modify the method disclosed by Algree and Kobita with Araujo in 
order to provide a system with a controller that enables efficient establishment of a 
communication path via the communication network without requiring the 
communicating devices to have static address, (col. 10, lines 39-44; Araujo) 
Conclusion 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 .136(a). 
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A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to SHEWAYE GELAGAY whose telephone number is 
(571)272-4219. The examiner can normally be reached on 8:00 am to 5:30 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Emmanuel Moise can be reached on 571-272-3865. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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Supervisory Patent Examiner, Art Unit 2137 



